echo 1 > /proc/sys/net/ipv4/ip_forward

iptables -F INPUT
iptables -F OUTPUT
iptables -F FORWARD
iptables -t nat -F POSTROUTING

iptables -P INPUT DROP
iptables -P OUTPUT ACCEPT
iptables -P FORWARD DROP

iptables -A INPUT -i lo -j ACCEPT
iptables -A INPUT -i eth1 -j ACCEPT
iptables -A INPUT -i eth0 -m state \
	--state ESTABLISHED,RELATED\-j ACCEPT
iptables -A INPUT -i eth0 -s 202.112.241.207/32 \
	-p tcp --dport 80 -j ACCEPT
iptables -A FORWARD -m multiport -p udp \
	--dports 4000,8000 -j DROP
iptables -A FORWARD -i eth1 -s 192.180.10.1/24 \
	-j ACCEPT
iptables -A FORWARD -i eth0  -m state \
	--state ESTABLISHED,RELATED -j ACCEPT
iptables -t nat -A POSTROUTING -s 192.180.10.1/24 \
	-o eth0 -j MASQUERADE
iptables -t nat -A POSTROUTING -s 192.180.10.1/24 \
	-o eth0 --to-source 59.64.186.5-59.64.186.9 -j SNAT
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80\
	-o eth0 --to-destination 192.168.10.45:22 -j DNAT

iptables -L -v
iptables -t nat -L -v

iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT\
    --to-ports 3128
